October 20, 2034

                            October 20, 2024

                October 20, 2034

                        October 20, 2034

#SpyNews - week 42 (October 13-19):

A summary of 78 espionage-related stories from week 42 coming from 🇵🇰🇨🇳🇩🇪🇷🇺🇺🇸🇬🇧🇺🇦🇫🇷🇷🇴🇮🇷🇦🇪🇮🇹🇵🇱🇳🇱🇭🇺🇮🇱🇾🇪🇰🇷🇮🇳🇨🇦🇬🇷🇹🇷🇲🇦🇪🇷🇸🇾🇰🇵🇱🇧🇧🇪🇦🇺🇧🇩🇩🇿🇪🇬🇸🇮🇳🇴 https://t.co/VYdjiELzcI#espionage #OSINT #HUMINT #SIGINT #spy
— Spy Collection (@SpyCollection1) October 20, 2024

Exploiting two kernel vulnerabilities within the Mali GPU in Google Pixel 7 and 8 Pro models (Android 14)https://t.co/DOtBCw2fBQ

Credits @_simo36#Android #infosec pic.twitter.com/ZCfpRETixW
— 0xor0ne (@0xor0ne) October 20, 2024

AI Replication: Work and Exploitationhttps://t.co/BxJODLToVH

New short essay on how AI agents could theoretically earn, steal, or exploit additional computing resources necessary to replicate and increase their resilience to single points of failure.

This isn't AI doomerism.… https://t.co/eLFPsp4j1w
— chrisrohlf (@chrisrohlf) October 19, 2024

Every single bug hunter must watch this, to know what you are up against.

Thank you @Jhaddix, for shedding light on the often shady world of bounties - much of which many of us were unaware of.#bugbounty #cybersecurityhttps://t.co/MGt9QJv6h2
— 🇷🇴 cristi (@CristiVlad25) October 19, 2024

  GitHub - can1357/selene: Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things! - can1357/selene

Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!

Active Directory (AD) Penetration Testing Guide - By Zishan Ahamed Thandar

Source: https://t.co/YQKmLsmylo pic.twitter.com/hJYAMeTU5H
— 7h3h4ckv157 (@7h3h4ckv157) October 20, 2024

🚨TOOL DROP 🚨 Vulnhuntr is live with 14 LLM discovered 0days under its belt ! If you’re at @nohatcon well be presenting about it in 10 min! https://t.co/ZNnxnP9hKb
— Marcello (@byt3bl33d3r) October 19, 2024

''SHELLSILO: Simplifying Syscall Assembly and Shellcode Creation''#infosec #pentest #redteam #blueteamhttps://t.co/wBh6l6KPYl
— Florian Hansemann (@CyberWarship) October 19, 2024

I made a writeup on HACK ME! reverse engineering challenge from ASCIS 2024.

The chalenge features a VM that uses a struct to store registers/memory. This writeup also focuses on how to define custom structs with IDA.https://t.co/1OfA1w0zQn
— Nam Pham (@FazeCT1512) October 19, 2024

Scalability! But at what cost?

This paper is an absolute classic because it explores the underappreciated tradeoffs of distributing systems.

It asks about the COST of distributed systems--the Configuration that Outscales a Single Thread. The question is, how many cores does a… pic.twitter.com/sFNSwcHfVZ
— Peter Kraft (@petereliaskraft) October 19, 2024

More details about CVE-2024-44068 - it’s part of an EoP chain in the wild:https://t.co/cUNkll6Hf4
— 1ce0ear (@1ce0ear) October 17, 2024

Learn rust the dangerous way

https://cliffle.com/p/dangerust/

Our paper "Non-termination Proving at Scale", joint work with @AzaleaRaad and @jvanegue, uses compositionality to apply non-termination proving (classic undecidable problem) to large codebases (e.g., OpenSSL), finding non-termination bugs in the wildhttps://t.co/tCAc2cAdhT
— Peter O'Hearn (@PeterOHearn12) October 20, 2024

                            Don't miss what's next. Subscribe to the grugq's newsletter: